The following builds have been pushed to Fedora EPEL 7 updates-testing
nginx-1.20.1-10.el7
Details about builds:
================================================================================
nginx-1.20.1-10.el7 (FEDORA-EPEL-2022-4d30ee90cd)
A high performance web server and reverse proxy server
--------------------------------------------------------------------------------
Update Information:
Backported fixes for CVE-2022-41741 and CVE-2022-41742.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Nov 10 2022 Felix Kaechele <felix(a)kaechele.ca> - 1:1.20.1-10
- backport fix for CVE-2022-41741 and CVE-2022-41742
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2141498 - CVE-2022-41742 nginx: Memory disclosure in the ngx_http_mp4_module
[epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2141498
[ 2 ] Bug #2141507 - CVE-2022-41741 nginx: Memory corruption in the ngx_http_mp4_module
[epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2141507
--------------------------------------------------------------------------------